6 matches found
Arbitrary Code Execution
evolution is vulnerable to arbitrary code execution. A flaw was found in the way Evolution parsed iCalendar timezone attachment data. If mail which included a carefully crafted iCalendar attachment was opened, arbitrary code could be executed as the user running Evolution...
Microsoft Internet Explorer Scripting Engine Memory Corruption (MS15-124: CVE-2015-6139)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer parses an iCalendar ICS file. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page...
Novell GroupWise Internet Agent iCalendar Parsing Denial of Service - Ver2 (CVE-2011-3827)
A denial-of-service vulnerability has been reported in Novell GroupWise Internet Agent. The vulnerability is due to insufficient validation of certain data when parsing a received iCalendar message. An attacker could exploit this vulnerability by enticing a target user to open a specially crafted...
Novell GroupWise Internet Agent iCalendar Parsing Denial of Service (CVE-2011-3827)
A denial of service vulnerability has been reported in Novell GroupWise Internet Agent...
Scientific Linux Security Update : evolution on SL5.x i386/x86_64
A flaw was found in the way Evolution parsed iCalendar timezone attachment data. If the Itip Formatter plug-in was disabled and a user opened a mail with a carefully crafted iCalendar attachment, arbitrary code could be executed as the user running Evolution. CVE-2008-1108 Note: the Itip Formatte...
CentOS 4 : evolution28 (CESA-2008:0515)
Updated evolution28 packages that address two buffer overflow vulnerabilities are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Evolution is the integrated collection of e-mail, calendaring,...